At 02:29 PM 10/18/99 -0700, Lee Wilson wrote:
> I have a machine that is getting flooded with ping requests to the point
>where it's saturating our T1 line. I don't want to turn off pings to the
>entire class C IP block with our firewall, but I'm not sure
>
>1) how to turn off pings to a single IP address
>2) if turning off pings at a single IP address will stop our T1 from being
>saturated anyway.
>
>Anyone have any advice on how to handle the problem?
i'm not sure it's right to just fix that one machine, else they might
target a different one. what kind of router do you have? if it's a
reasonably-sized cisco, you can apply rate limiting to incoming ICMP
traffic (e.g. only allow X bits/second of incoming ICMP traffic).
